-
公开(公告)号:US20170357817A1
公开(公告)日:2017-12-14
申请号:US15275289
申请日:2016-09-23
Applicant: Apple Inc.
Inventor: Eric B. Tamura , Wade Benson , John Garvey
CPC classification number: G06F21/6218 , G06F21/31 , G06F21/602 , G06F21/78 , G06F2221/2107 , H04L9/0822 , H04L9/0863 , H04L9/14
Abstract: Techniques are disclosed relating to securely storing file system metadata in a computing device. In one embodiment, a computing device includes a processor, memory, and a secure circuit. The memory has a file system stored therein that includes metadata for accessing a plurality of files in the memory. The metadata is encrypted with a metadata encryption key that is stored in an encrypted form. The secure circuit is configured to receive a request from the processor to access the file system. In response to the request, the secure circuit is configured to decrypt the encrypted form of the metadata encryption key. In some embodiments, the computing device includes a memory controller configured to receive the metadata encryption key from the secure circuit, retrieve the encrypted metadata from the memory, and decrypt the encrypted metadata prior to providing the metadata to the processor.
-
公开(公告)号:US20150149692A1
公开(公告)日:2015-05-28
申请号:US14088265
申请日:2013-11-22
Applicant: Apple Inc.
Inventor: Wenguang Wang , John Garvey , Richard Paul Spillane
IPC: G06F12/02
CPC classification number: G06F12/0246 , G06F3/06 , G06F3/0608 , G06F3/0613 , G06F3/0619 , G06F3/0643 , G06F3/0679 , G06F11/14 , G06F11/2082 , G06F12/0253 , G06F2212/7205
Abstract: A non-overwrite storage system, such as a log-structured file system, that includes a non-volatile storage having multiple storage segments, a volatile storage having an unsafe free segments list (UFSL), and a controller for managing storage resources of the non-volatile storage. The controller can be configured to copy page data from used segment(s) of the non-volatile storage, write the copied page data to free segment(s) of the non-volatile storage, index the UFSL with indications of the used segment(s), and thereafter prevent reuse of the used segment(s) while the indications of the used segment(s) remain indexed in the UFSL. In some implementations, the non-overwrite storage system may be associated with flash storage system, and a flash controller can be configured perform a flush track cache operation to clear the indications of the used segment(s) from the UFSL, to enable reuse of segment(s) that were previously indexed to the UFSL.
Abstract translation: 包括具有多个存储段的非易失性存储器的非覆盖存储系统(诸如日志结构化文件系统),具有不安全空闲段列表(UFSL)的易失性存储器,以及用于管理 非易失性存储。 控制器可以被配置为从非易失性存储器的使用的段复制页面数据,将复制的页面数据写入非易失性存储器的空闲段,利用所使用的段的指示来索引UFSL( s),然后防止所使用的段的重用,同时所使用的段的指示在UFSL中保持索引。 在一些实现中,非重写存储系统可以与闪存存储系统相关联,闪存控制器可被配置为执行冲洗磁道高速缓存操作以从UFSL清除所使用的段的指示,以使得能够重用 之前已被索引到UFSL的段。
-
公开(公告)号:US11176089B2
公开(公告)日:2021-11-16
申请号:US15377996
申请日:2016-12-13
Applicant: Apple Inc.
Inventor: John Garvey , Michael S. Mackovitch , Peter J. Rutenbar
Abstract: Representative embodiments set forth herein disclose techniques for implementing dynamic file system volumes that can share storage space with other file system (FS) volumes within the same partition/storage device. According to some embodiments, techniques are disclosed for establishing an FS volume within a container. According to other embodiments, techniques are disclosed for handling input/output (I/O) requests across different FS volumes. According to yet other embodiments, techniques are disclosed for efficiently establishing, within a storage device, an FS volume from an image of the FS volume.
-
公开(公告)号:US09213634B2
公开(公告)日:2015-12-15
申请号:US14088265
申请日:2013-11-22
Applicant: Apple Inc.
Inventor: Wenguang Wang , John Garvey , Richard Paul Spillane
CPC classification number: G06F12/0246 , G06F3/06 , G06F3/0608 , G06F3/0613 , G06F3/0619 , G06F3/0643 , G06F3/0679 , G06F11/14 , G06F11/2082 , G06F12/0253 , G06F2212/7205
Abstract: A non-overwrite storage system, such as a log-structured file system, that includes a non-volatile storage having multiple storage segments, a volatile storage having an unsafe free segments list (UFSL), and a controller for managing storage resources of the non-volatile storage. The controller can be configured to copy page data from used segment(s) of the non-volatile storage, write the copied page data to free segment(s) of the non-volatile storage, index the UFSL with indications of the used segment(s), and thereafter prevent reuse of the used segment(s) while the indications of the used segment(s) remain indexed in the UFSL. In some implementations, the non-overwrite storage system may be associated with flash storage system, and a flash controller can be configured perform a flush track cache operation to clear the indications of the used segment(s) from the UFSL, to enable reuse of segment(s) that were previously indexed to the UFSL.
Abstract translation: 包括具有多个存储段的非易失性存储器的非覆盖存储系统(诸如日志结构化文件系统),具有不安全空闲段列表(UFSL)的易失性存储器,以及用于管理 非易失性存储。 控制器可以被配置为从非易失性存储器的使用的段复制页面数据,将复制的页面数据写入非易失性存储器的空闲段,利用所使用的段的指示来索引UFSL( s),然后防止所使用的段的重用,同时所使用的段的指示在UFSL中保持索引。 在一些实现中,非重写存储系统可以与闪存存储系统相关联,闪存控制器可被配置为执行冲洗磁道高速缓存操作以从UFSL清除所使用的段的指示,以使得能够重用 之前已被索引到UFSL的段。
-
Patent Agency Ranking
公开(公告)号:US20240160766A1
公开(公告)日:2024-05-16
申请号:US18474146
申请日:2023-09-25
Applicant: Apple Inc.
Inventor: Eric B. Tamura , Wade Benson , John Garvey
CPC classification number: G06F21/6218 , G06F21/31 , G06F21/602 , H04L9/14
Abstract: Techniques are disclosed relating to securely storing file system metadata in a computing device. In one embodiment, a computing device includes a processor, memory, and a secure circuit. The memory has a file system stored therein that includes metadata for accessing a plurality of files in the memory. The metadata is encrypted with a metadata encryption key that is stored in an encrypted form. The secure circuit is configured to receive a request from the processor to access the file system. In response to the request, the secure circuit is configured to decrypt the encrypted form of the metadata encryption key. In some embodiments, the computing device includes a memory controller configured to receive the metadata encryption key from the secure circuit, retrieve the encrypted metadata from the memory, and decrypt the encrypted metadata prior to providing the metadata to the processor.
-
公开(公告)号:US11194920B2
公开(公告)日:2021-12-07
申请号:US16659146
申请日:2019-10-21
Applicant: Apple Inc.
Inventor: Eric B. Tamura , Wade Benson , John Garvey
Abstract: Techniques are disclosed relating to securely storing file system metadata in a computing device. In one embodiment, a computing device includes a processor, memory, and a secure circuit. The memory has a file system stored therein that includes metadata for accessing a plurality of files in the memory. The metadata is encrypted with a metadata encryption key that is stored in an encrypted form. The secure circuit is configured to receive a request from the processor to access the file system. In response to the request, the secure circuit is configured to decrypt the encrypted form of the metadata encryption key. In some embodiments, the computing device includes a memory controller configured to receive the metadata encryption key from the secure circuit, retrieve the encrypted metadata from the memory, and decrypt the encrypted metadata prior to providing the metadata to the processor.
-
公开(公告)号:US10452859B2
公开(公告)日:2019-10-22
申请号:US15275289
申请日:2016-09-23
Applicant: Apple Inc.
Inventor: Eric B. Tamura , Wade Benson , John Garvey
Abstract: Techniques are disclosed relating to securely storing file system metadata in a computing device. In one embodiment, a computing device includes a processor, memory, and a secure circuit. The memory has a file system stored therein that includes metadata for accessing a plurality of files in the memory. The metadata is encrypted with a metadata encryption key that is stored in an encrypted form. The secure circuit is configured to receive a request from the processor to access the file system. In response to the request, the secure circuit is configured to decrypt the encrypted form of the metadata encryption key. In some embodiments, the computing device includes a memory controller configured to receive the metadata encryption key from the secure circuit, retrieve the encrypted metadata from the memory, and decrypt the encrypted metadata prior to providing the metadata to the processor.
-
公开(公告)号:US11809584B2
公开(公告)日:2023-11-07
申请号:US17457401
申请日:2021-12-02
Applicant: Apple Inc.
Inventor: Eric B. Tamura , Wade Benson , John Garvey
CPC classification number: G06F21/6218 , G06F21/31 , G06F21/602 , H04L9/14
Abstract: Techniques are disclosed relating to securely storing file system metadata in a computing device. In one embodiment, a computing device includes a processor, memory, and a secure circuit. The memory has a file system stored therein that includes metadata for accessing a plurality of files in the memory. The metadata is encrypted with a metadata encryption key that is stored in an encrypted form. The secure circuit is configured to receive a request from the processor to access the file system. In response to the request, the secure circuit is configured to decrypt the encrypted form of the metadata encryption key. In some embodiments, the computing device includes a memory controller configured to receive the metadata encryption key from the secure circuit, retrieve the encrypted metadata from the memory, and decrypt the encrypted metadata prior to providing the metadata to the processor.
-
公开(公告)号:US20220092206A1
公开(公告)日:2022-03-24
申请号:US17457401
申请日:2021-12-02
Applicant: Apple Inc.
Inventor: Eric B. Tamura , Wade Benson , John Garvey
Abstract: Techniques are disclosed relating to securely storing file system metadata in a computing device. In one embodiment, a computing device includes a processor, memory, and a secure circuit. The memory has a file system stored therein that includes metadata for accessing a plurality of files in the memory. The metadata is encrypted with a metadata encryption key that is stored in an encrypted form. The secure circuit is configured to receive a request from the processor to access the file system. In response to the request, the secure circuit is configured to decrypt the encrypted form of the metadata encryption key. In some embodiments, the computing device includes a memory controller configured to receive the metadata encryption key from the secure circuit, retrieve the encrypted metadata from the memory, and decrypt the encrypted metadata prior to providing the metadata to the processor.
-
-
-
-
-
-
-
-
Search Results
9
records
(took 0.012 seconds)
